Automox Worklet: Ensuring Firefox is Installed on macOS Devices

One of the most important things you can do to ensure good cyber hygiene is to make sure your browser is up to date. Up-to-date browsers protect users from vulnerabilities and related security breaches. Updating your endpoints to the latest version of Firefox will provide a faster experience, increased security, and the latest features. 

This Worklet will evaluate macOS devices to ensure that the latest version of Firefox is installed. If the evaluation code finds the latest Firefox application is not installed, the remediation code will install the latest version on the device.

Automox Worklet: Ensure Firefox is Installed on macOS Devices

Evaluation:

#!/bin/bash
#example script for installing Firefox on Mac devices
 
#evaluate the device to see if Firefox is currently installed
if [ -d "/Applications/firefox.app" ]; then
        exit 0
else
        exit 1
fi
 

Remediation:

#!/bin/bash
#example script for installing Firefox on Mac devices
 
#create a temporary directory to download Firefox install file
set -e
tempfile=$(mktemp)
 
#download the latest version of Firefox to the temp file
echo "Downloading Firefox..."
curl -L "https://download.mozilla.org/?product=firefox-latest&os=osx&lang=en-US" -o "$tempfile"
echo "Installing Firefox..."
 
#mount the firefox dmg file to a volume 
hdiutil attach /tmp/Firefox.dmg
 
#copy the firefox app to the devices applications 
cp -R /Volumes/Firefox/Firefox.app/ /Applications/Firefox.app
 
#remove tmp file and unmount the image from the volume
echo "Cleaning up..."
 
hdiutil detach /Volumes/Firefox/ -quiet
sleep 2
 
rm -f "$tempfile" 

 

Step-by-Step: Create the Firefox on macOS Worklet

To deploy this endpoint hardening Worklet, do the following:

  1. Log in to your Automox Console.
  2. Navigate to the System Management page and click Create Policy in the upper right-hand section of the screen.
  3. Choose Mac under Worklet. 
  4. Copy and paste the Remediation code scripts [shown above].
  5. Define a schedule for when you want this policy to run. 
  6. Click Create Worklet.
  7. Assign Worklet to a group or multiple groups and click Save Changes.
  8. [Optional] To execute Worklet manually, click the Execute Policy Now button.

That should do it! Be sure to test this on a few devices before deploying to production environment.

As always, feel free to reach out to support@automox.com if you need any technical assistance.

About Automox Automated Patch Management

Facing growing threats and a rapidly expanding attack surface, understaffed and alert-fatigued organizations need more efficient ways to eliminate their exposure to vulnerabilities. Automox is a modern cyber hygiene platform that closes the aperture of attack by more than 80% with just half the effort of traditional solutions.

Cloud-native and globally available, Automox enforces OS & third-party patch management, security configurations, and custom scripting across Windows, Mac, and Linux from a single intuitive console. IT and SecOps can quickly gain control and share visibility of on-prem, remote and virtual endpoints without the need to deploy costly infrastructure. 

Experience modern, cloud-native patch management today with a 15-day free trial of Automox and start recapturing more than half the time you're currently spending on managing your attack surface. Automox dramatically reduces corporate risk while raising operational efficiency to deliver best-in-class security outcomes, faster and with fewer resources.

 

Get Instant Updates on Vulnerabilities

Subscribe to receive Automox vulnerability alerts

Reduce your threat surface by up to 80%

Make all of your corporate infrastructure more resilient by automating the basics of cyber hygiene.

Take 15 days to raise your security confidence!
Start a Free Trial